Enhanced digital right management framework
First Claim
1. A non-transitory machine-readable medium comprising a plurality of instructions which when executed result in a server platform:
- receiving, from a client platform, a request of downloading content;
receiving, from the client platform, first attestation information comprising a measurement result of a hardware component and a software component of the client platform;
examining if the client platform attests to a client platform characteristic that affects integrity of the client platform by comparing the first attestation information with a value provided by the client platform;
encrypting and downloading the content to the client platform, if the client platform attests to the client platform characteristic;
receiving, from the client platform, a request of viewing the content;
receiving, from the client platform, second attestation information comprising another measurement result of the hardware component and the software component of the client platform, wherein the another measurement result comprises a hash value;
examining if the client platform attests to the client platform characteristic that affects integrity of the client platform by comparing the second attestation information with the value; and
sending a content key to the client platform if the client platform attests to the client platform characteristic.
1 Assignment
0 Petitions
Accused Products
Abstract
Machine-readable media, methods, apparatus and system for enhanced digital right management framework are described. A server platform may receive a request of downloading content and first attestation information from a client platform. The server platform may examine if the client platform attests to a client platform characteristic that affects integrity of the client platform by using the attestation information, and then encrypt and download the content to the client platform if the client platform attests to the client platform characteristic. The server platform may further receive a request of viewing the content and second attestation information from the client platform. The server platform may then examine if the client platform attests to its integrity by using the second attestation information; and then send a content key to the client platform if the client platform attests to its integrity, so that the client platform can decrypt and view the content.
45 Citations
11 Claims
-
1. A non-transitory machine-readable medium comprising a plurality of instructions which when executed result in a server platform:
-
receiving, from a client platform, a request of downloading content; receiving, from the client platform, first attestation information comprising a measurement result of a hardware component and a software component of the client platform; examining if the client platform attests to a client platform characteristic that affects integrity of the client platform by comparing the first attestation information with a value provided by the client platform; encrypting and downloading the content to the client platform, if the client platform attests to the client platform characteristic; receiving, from the client platform, a request of viewing the content; receiving, from the client platform, second attestation information comprising another measurement result of the hardware component and the software component of the client platform, wherein the another measurement result comprises a hash value; examining if the client platform attests to the client platform characteristic that affects integrity of the client platform by comparing the second attestation information with the value; and sending a content key to the client platform if the client platform attests to the client platform characteristic. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A non-transitory machine-readable medium comprising a plurality of instructions which when executed result in a client platform:
-
sending, to a server platform, a request of downloading content; sending, to the server platform, first attestation information comprising a measurement result of a hardware component and a software component of the client platform; receiving, from the server platform, the content that is encrypted with a content key owned by the server platform, if the server platform determines that the client platform attests to a client platform characteristic that affects integrity of the client platform by comparing the first attestation information with a value provided by the client platform; sending, to the server platform, a request of viewing the content; sending, to the server platform, second attestation information comprising another measurement result of the hardware component and the software component of the client platform, wherein the another measurement result comprises a hash value; and receiving, from the server platform, the content key to decrypt the content, if the server platform determines that the client platform attests to the client platform characteristic that affects the integrity of the client platform by comparing the second attestation information with the value. - View Dependent Claims (10, 11)
-
Specification